A system and method of providing network access comprising a processor, a first network interface coupled to the processor, a second network interface coupled to the processor, a storage media accessible by the processor and a set of computer instructions stored on the storage media, executable by the processor, where the computer instructions can be executable to receive a network communication over the first network interface from a user using a user device and determine if the network communication is associated with an authenticated user. If the network communication is not associated with an authenticated user, is not destined for a server in a walled garden, and a pre-authentication interface is specified, the computer instructions can be executable to direct the user to the pre-authentication interface. The computer instructions can be further executable to direct the user to an authentication interface when the network communication is not associated with an authenticated user, is not destined for a server in the walled garden, and a pre-authentication interface is not specified.
Legal claims defining the scope of protection, as filed with the USPTO.
1. A system of providing network access comprising: a processor; a first network interface coupled to the processor; a second network interface coupled to the processor; a storage media accessible by the processor; a set of computer instructions executable by the processor to: receive a network communication at the first network interface from a device associated with a user; determine if the network communication is associated with an authenticated user; and if the network communication is not associated with an authenticated user, does not identify an address within a walled garden, and a pre-authentication URL is not specified, direct the user to an authentication interface; receive credentials from the user; authenticate the user based on the credentials; and receive a user profile if the user is authenticated; wherein the set of computer instructions are further executable by the processor to: intercept an unauthenticated client access to a server outside of the walled garden; determine whether an authentication token is present in the client request; direct the client to an authentication URL if the authentication token is present; and direct the client to the pre-authentication URL if the authentication token is not present.
2. The system of claim 1 , wherein the computer instructions are further operable to grant access for an unauthenticated client to any destination server within the walled garden.
3. The system of claim 2 , wherein the computer instructions are further operable to redirect an unauthenticated client to the pre-authentication URL destination, when such destination has been specified.
4. The system of claim 3 , wherein the network communication comprises an HTTP request and wherein the computer instructions are further executable to: receive the HTTP request; and send a redirect request to the device to redirect a web browser to the authentication interface.
5. The system of claim 2 , wherein the computer instructions are further executable to: determine a network protocol for the network communication; and send a reply to the device according to the network protocol directing the user to the authentication interface.
6. The system of claim 5 , wherein the network protocol is one of HTTP, SMTP, POP, telnet, UDP or FTP.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
March 10, 2005
February 16, 2010
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.